Richard Chirgwin

Contact Mail Follow Twitter RSS feed

What do Zuck, Sergey, @Jack and Bezos have in common? They don't want encryption broken

Opposition to the Australian government's proposed crypto-busting legislation is gathering pace, with internet and telco giants deciding to speak with a single voice. Local companies like Telstra and Optus have added their names to the Alliance for a Safe and Secure Internet, which is opposed the Australian government's plans …
Cthulu emerges from a printer. Image created by illustrator Andy Davies. Copyright: The Register

Ever used an airport lounge printer? You probably don't know how blabby they can be

Privacy consultant and former Internet Architecture Board president Christian Huitema has said he reckons hotspot users should be given better privacy protection. In an informational draft for the Internet Engineering Task Force published yesterday, Huitema explained that DNS Service Discovery (DNS-SD), the protocol that lets …

100,000 home routers recruited to spread Brazilian hacking scam

A DNSchanger-like attack first spotted in August on D-Link routers in Brazil has expanded to affect more than 70 different devices and more than 100,000 individual piece of kit. Radware first identified the latest campaign, which started as an attack on Banco de Brasil customers via a DNS redirection that sent people to a …
Vocus Australia Singapore Cable

Fragile SMW-3 cable back in service

The troubled Sea-Me-We-3 cable is back online, for now. The break, in early September, led Australian carrier Vocus to light up its under-test ASC cable ahead of schedule. A cable ship was found quickly enough, but ships move slowly. The Asean Explorer was detailed to carry out the repairs, but it didn't arrive in Batam, …
Hand pulls on a latex rubber glove (disposable). Photo by shutterstock

New Zealand border cops warn travelers that without handing over electronic passwords 'You shall not pass!'

Customs laws in New Zealand now allow border agents to demand travellers unlock their phones or face an NZ$5,000 (around US$3,300) fine. The law was passed during 2017 with its provisions coming into effect on October 1. The security conscious of you will also be pleased to know Kiwi officials still need a “reasonable” …
Catching ball photo via Shutterstock

Netadmins, catch: Here's your weekly dose of networking intel

Microsoft's Ignite conference attracted some attention in the networking biz this week, with Fortinet and Riverbed putting up the jazz hands to get attention. From Fortinet comes an expansion of its Azure security offerings. FortiCASB – its Cloud Security Access Broker – is a subscription services providing “visibility, …
Password

Your specialist subject? The bleedin' obvious... Feds warn of RDP woe

The FBI and the US Department of Homeland Security have added their voices to warnings of insecure deployments of Remote Desktop Protocol (RDP) services. RDP servers can be left misconfigured, or poorly secured, allowing scumbags to waltz into networks and cause further damage. Compromised logins are so abundant they fetch a …
Cut cable

Australia, US and Japan want Huawei local submarine cable project

Australia is once again trying to get Huawei removed from a submarine cable contract in the Asia-Pacific. The cable in question is planned to link Papua New Guinea communities of Port Moresby, Alotau, Popondetta, Lae and Madang. At Port Moresby, it would connect to the Coral Sea Cable System which at the end of 2019 will land …
Elon Musk smoking a spliff on Joe Rogan's podcast

Holy smokes! US watchdog sues Elon Musk after he makes hash of $420 Tesla tweet

Updated Tesla and SpaceX supremo Elon Musk has been accused of fraud by America's financial watchdog – after he mused on Twitter about taking his automaker private. The Securities and Exchange Commission's allegations were made in a lawsuit filed on Thursday against the ultra-wealthy showman, and center on this tweet he blurted on …

TLS proxies? Nah. Truthfully Less Secure 'n' poxy, say Canadian infosec researchers

Enterprises buying TLS proxies to improve their network security could easily be making things worse, according to Canadian research out this week. dunce_cap_648 TLS proxies: Insecure by design, say boffins READ MORE The analysis is depressing enough on its own, but it comes from a group with a long history of demonstrating …
Networks city concept. Phtoo by shutterstsock

Open-source boffins want to do for the IoT edge what Kubernetes did for containers

Two high-profile open-source collaborations are putting their heads together to work out how to take Kubernetes, more familiar in hyperscale environments, out to Internet of Things edge computing projects. The Kubernetes IoT Edge Working Group is the brainchild of the Cloud Native Computing Foundation (CNCF) and the Eclipse …
Bear attack

Fancy Bear still Putin out new modules for VPNFilter malware

Cunning malware VPNFilter remains under active development, and is acquiring ever more dangerous features. That's the conclusion Cisco's Talos Intelligence security team reached after delving into recent samples and identifying seven “third-stage VPNFilter modules that add significant functionality to the malware”. VPNFilter …
A judge signing a paper

Oh, and another thing, Qualcomm tells court: Apple handed Intel our chipping source code

Qualcomm has attempted to add another accusation to its 2017 lawsuit against Apple – this time claiming to a San Diego court that Cupertino wasn't just careless with proprietary info, but that it stole "vast swathes" of data to pass over to Intel. The accusation comes in the form of an amendment filed on Monday to a lawsuit …

Canadian security boss ain't afraid of no Huawei, sees no reason for ban

Canadian Center for Cyber Security chief Scott Jones has told a parliamentary committee there's no need for the country to cut Chinese comms giant Huawei out of its 5G rollout. Speaking to the Canadian parliament's Standing Committee on Public Safety and National Security earlier this week, Jones said the centre believes the …

Crypto-jackers' best pal Monero resets the 'days since a critical bug' counter back to zero

Monero's developers have emitted their second software bug postmortem examination in a month – this time for a flaw miscreants could have exploited to burn through exchanges' digital cash. The organization behind the XMR cryptocurrency – favored by some crypto-jackers as well as legitimate netizens – explained on Tuesday the …
man meditating next to a laptop

Linux kernel's 'seat warmer' drops 4.19-rc5 with – wow – little drama

Speculation and debate still surround Linus Torvald's decision to step back from Linux kernel development for a while, but the next kernel release candidate landed with far less sturm und drang. Greg Kroah-Hartman, anointed by Torvalds to keep things rolling while the Linux supremo takes a break and gets some help, dropped …
Mitsubishi Outlander Shutterstock Noraismail

Braking bad: Mitsubishi recalls 68k SUVs over buggy software

Japanese auto maker Mitsubishi has recalled more than 68,000 vehicles in the US affected by two separate software bugs. America's National Highway Traffic Safety Administration (NHTSA) issued two recalls, one affecting more than 59,000 2018-model SUVs because of a bug in the braking system's management unit. Included are 2018 …
Shutterstock - Giant bug destroys ciy

Cisco sneaks hardcoded secret root backdoor into vid surveillance kit

If you run Cisco's video surveillance kit, hop over to Switchzilla's support site and download the latest version of its management software. Late last week, the networking giant admitted that its Cisco Video Surveillance Manager Appliance has an undocumented root account with static hard-coded credentials. Reading between …

Amid Trump-China tariff tiff, Cisco kit prices to resellers soar up to 25%

Exclusive In September, Cisco CEO Chuck Robbins warned that America's trade war with China would drive up price tags on technology. Now, The Register has learned those fears have seemingly manifested: Switchzilla has unexpectedly increased its prices. Robbins' warning came in an interview last month in which he said: “The tariffs that …
Ethernet cable rises up like a snake (artist's impression). Image via shutterstock

Juniper's Contrail gets edgy, Cloudflare joins BGP club, and an $Important announcement

Juniper Networks this week pulled the covers off the latest in its Contrail range, a carrier edge product called Contrail Edge Cloud. The Gin Palace said the software targets applications like base stations, hub sites, and switching sites. Integration with Red Hat's OpenStack IaaS platform allows Contrail Edge Cloud to run …
his low-angle self-portrait of NASA's Curiosity Mars rover shows the vehicle at the site from which it reached down to drill into a rock target called "Buckskin." The MAHLI camera on Curiosity's robotic arm took multiple images on Aug. 5, 2015, that were stitched together into this selfie. Credit: NASA/JPL-Caltech/MSSS

Curiosity's computer silent on science, baffling boffins

Since last weekend, an as-yet-undiagnosed glitch in the Mars Curiosity Rover has baffled boffins at NASA. In an update posted to the mission page, JPL's Ashwin Vasavada wrote that the project team is trying to work out what's preventing the rover from transmitting “much of the science and engineering data stored in its memory …
servers

Dead retailer's 'customer data' turns up on seized kit, unencrypted and very much for sale

Servers that once belonged to defunct Canadian gadget retailer NCIX turned up on the second-hand market without being wiped – and their customer data sold overseas – it is claimed. Those boxes, allegedly, stored plaintext credit card data for approximately 260,000 people, and purchase records for 385,000 shoppers. Travis …
Water jet pack photo via Shutterstock

Microsoft's Jet crash: Zero-day flaw drops after deadline passes

Updated The Zero Day Initiative has gone public with an unpatched remote-code execution bug in Microsoft's Jet database engine, after giving Redmond 120 days to fix it. The Windows giant did not address the security blunder in time, so now everyone knows about the flaw, and no official patch is available. The bug, reported to …
handcuffs

No, that Sunspot Solar Observatory didn't see aliens. It's far more grim

On September 6, the Sunspot Solar Observatory in New Mexico, USA, was evacuated and sealed off without explanation, sparking wild conspiracy theories as to why. Since it's an observatory, the favorite theory was that it had spotted aliens, and the lockdown was part of a coverup to prevent public panic. No, there weren't any …
China keyboard, image via Shutterstock

Alibaba wants to ship its own neural network silicon by H2 2019

Alibaba has created a subsidiary to design and build silicon for artificial intelligence. The AI business will be called Pingtouge, the Chinese nickname of the small but aggressive honey badger. The chipset, the product of the company's Damo Academy R&D arm, is dubbed Ali-NPU. The company spoke of its plans at its annual …

Biting the hand that feeds IT © 1998–2018